Openbravo Issue Tracking System - Openbravo ERP
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0043705Openbravo ERPA. Platformpublic2020-04-08 10:562020-08-20 08:52
Reporterjarmendariz 
Assigned Toplatform 
PrioritynormalSeveritymajorReproducibilityhave not tried
StatusclosedResolutionfixed 
PlatformOS5OS Version
Product Version 
Target VersionFixed in VersionPR20Q4 
Merge Request Statusapproved
Review Assigned To
OBNetwork customerNo
Web browser
ModulesCore
Support ticket
Regression level
Regression date
Regression introduced in release
Regression introduced by commit
Triggers an Emergency PackNo
Summary0043705: Fix security issues in npm dependencies
DescriptionCurrently, when running 'npm install', the following message is shown:

found 38973 vulnerabilities (38958 low, 15 moderate)
  run `npm audit fix` to fix them, or `npm audit` for details
Steps To ReproduceExecute 'npm install' and check the output
Proposed SolutionRun 'npm audit fix' and update package-lock.json.
Additional Information
TagsNo tags attached.
Relationships
related to defect 0042957 closed jarmendariz Update package-lock.json to fix npm-reported vulnerabilities 
related to defect 0044856 closed platform Upgrade Jest to latest stable version 
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2020-04-08 10:56jarmendarizNew Issue
2020-04-08 10:56jarmendarizAssigned To => platform
2020-04-08 10:56jarmendarizOBNetwork customer => No
2020-04-08 10:56jarmendarizModules => Core
2020-04-08 10:56jarmendarizTriggers an Emergency Pack => No
2020-04-08 10:58jarmendarizRelationship addedrelated to 0042957
2020-08-19 12:29hgbotMerge Request Status => open
2020-08-19 12:29hgbotNote Added: 0122169
2020-08-19 12:53hgbotMerge Request Statusopen => approved
2020-08-20 08:52hgbotResolutionopen => fixed
2020-08-20 08:52hgbotStatusnew => closed
2020-08-20 08:52hgbotNote Added: 0122202
2020-08-20 08:52hgbotFixed in Version => PR20Q4
2020-08-20 08:52hgbotNote Added: 0122203
2020-08-20 09:01jarmendarizRelationship addedrelated to 0044856

Notes
(0122169)
hgbot   
2020-08-19 12:29   
Merge Request created: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/124 [^]
(0122202)
hgbot   
2020-08-20 08:52   
Merge request merged: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/124 [^]
(0122203)
hgbot   
2020-08-20 08:52   
Directly closing issue as related merge request is already approved.

Repository: https://gitlab.com/openbravo/product/openbravo [^]
Changeset: 87cfba584ac51aaf0786528f3f41f13cd33538bc
Author: Javier Armendáriz <javier.armendariz@openbravo.com>
Date: 2020-08-19T12:26:43+02:00
URL: https://gitlab.com/openbravo/product/openbravo/-/commit/87cfba584ac51aaf0786528f3f41f13cd33538bc [^]

Fixed ISSUE-43705: Ran npm audit fix to update package-lock.json to fix most security vulnerabilities

---
M package-lock.json
---