Openbravo Issue Tracking System - Openbravo ERP |
View Issue Details |
|
ID | Project | Category | View Status | Date Submitted | Last Update |
0048560 | Openbravo ERP | A. Platform | public | 2022-02-09 00:00 | 2022-05-31 12:06 |
|
Reporter | AugustoMauch | |
Assigned To | ablasco | |
Priority | normal | Severity | major | Reproducibility | have not tried |
Status | closed | Resolution | fixed | |
Platform | | OS | 5 | OS Version | |
Product Version | | |
Target Version | | Fixed in Version | | |
Merge Request Status | |
Review Assigned To | |
OBNetwork customer | |
Web browser | |
Modules | Core |
Support ticket | |
Regression level | |
Regression date | |
Regression introduced in release | |
Regression introduced by commit | |
Triggers an Emergency Pack | No |
|
Summary | 0048560: core2: Update package-lock.json to fix npm audit issues |
Description | npm audit reports problems which should be fixed by updating versions in the package-lock.json
found 75 vulnerabilities (2 low, 21 moderate, 48 high, 4 critical) in 2952 scanned packages
run `npm audit fix` to fix 53 of them.
|
Steps To Reproduce | run "npm audit" in source.path |
Proposed Solution | Run npm audit fix two (!) times
- one execution alone does not fix all issues which it could fix
- 2nd execution adds more fixes
- A 3rd execution does not reduce number of audit issues found so is not necessary
|
Additional Information | |
Tags | No tags attached. |
Relationships | |
Attached Files | |
|
Issue History |
Date Modified | Username | Field | Change |
2022-02-09 00:00 | AugustoMauch | New Issue | |
2022-02-09 00:00 | AugustoMauch | Assigned To | => Triage Platform Base |
2022-02-09 00:00 | AugustoMauch | Modules | => Core |
2022-02-09 00:00 | AugustoMauch | Triggers an Emergency Pack | => No |
2022-02-09 00:00 | AugustoMauch | Issue generated from | 0048346 |
2022-02-09 00:08 | hgbot | Note Added: 0134839 | |
2022-02-09 00:10 | AugustoMauch | Status | new => scheduled |
2022-03-28 15:24 | shuehner | Issue cloned | 0048913 |
2022-03-28 17:22 | shuehner | Note Added: 0136104 | |
2022-03-28 17:22 | shuehner | Description Updated | bug_revision_view_page.php?rev_id=23817#r23817 |
2022-03-28 17:22 | shuehner | Proposed Solution updated | |
2022-03-28 17:22 | hgbot | Note Added: 0136105 | |
2022-03-28 17:23 | shuehner | Note Added: 0136107 | |
2022-05-16 11:02 | AugustoMauch | Assigned To | Triage Platform Base => ablasco |
2022-05-19 13:48 | hgbot | Note Added: 0137536 | |
2022-05-31 12:06 | hgbot | Resolution | open => fixed |
2022-05-31 12:06 | hgbot | Status | scheduled => closed |
2022-05-31 12:06 | hgbot | Note Added: 0137889 | |
2022-05-31 12:06 | hgbot | Note Added: 0137890 | |
Notes |
|
(0134839)
|
hgbot
|
2022-02-09 00:08
|
|
|
|
|
As usual MR should check for added packages & their licenses (if compatible) |
|
|
(0136105)
|
hgbot
|
2022-03-28 17:22
|
|
|
|
|
Closed old MR as it was over a month old and npm packages & version change very frequently. |
|
|
(0137536)
|
hgbot
|
2022-05-19 13:48
|
|
|
|
(0137889)
|
hgbot
|
2022-05-31 12:06
|
|
|
|
(0137890)
|
hgbot
|
2022-05-31 12:06
|
|
|