Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0042957 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| defect | [Openbravo ERP] A. Platform | major | have not tried | 2020-01-21 18:34 | 2020-01-28 13:22 | |||
| Reporter | shuehner | View Status | public | |||||
| Assigned To | jarmendariz | |||||||
| Priority | urgent | Resolution | fixed | Fixed in Version | 3.0PR20Q2 | |||
| Status | closed | Fix in branch | Fixed in SCM revision | c5ff57ca6732 | ||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Review Assigned To | alostale | |||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0042957: Update package-lock.json to fix npm-reported vulnerabilities | |||||||
| Description | Using npm install as necessary step for the jslint & formatter tools in pi shows following warning: found 12 high severity vulnerabilities run `npm audit fix` to fix them, or `npm audit` for details Cause is having package-lock.json fixing some npm packages to older versions still having those issues. package-lock.json should be updated to pull in latest versions version of the dependencies. | |||||||
| Steps To Reproduce | Use npm install in a clone of pi and review output | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
||||||||
|
||||||||
 Relationships |
|
Notes |
|
|
(0117235) jarmendariz (developer) 2020-01-24 13:35 |
Repository: erp/devel/pi Changeset: c5ff57ca6732 Author: Javier Armendáriz <javier.armendariz <at> openbravo.com> Date: Thu Jan 24 08:55:59 2020 +0100 URL: https://code.openbravo.com/erp/devel/pi/rev/c5ff57ca6732 [^] [^] FIX-42957: Update package-lock to fix npm vulnerabilities. --- M modules/org.openbravo.client.kernel/jsutils/check-npm-deps M package-lock.json --- |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2020-01-21 18:34 | shuehner | New Issue | |
| 2020-01-21 18:34 | shuehner | Assigned To | => platform |
| 2020-01-21 18:34 | shuehner | Modules | => Core |
| 2020-01-21 18:34 | shuehner | Triggers an Emergency Pack | => No |
| 2020-01-24 08:50 | jarmendariz | Assigned To | platform => jarmendariz |
| 2020-01-24 08:51 | jarmendariz | Status | new => scheduled |
| 2020-01-24 13:35 | jarmendariz | Note Added: 0117235 | |
| 2020-01-24 13:35 | jarmendariz | Status | scheduled => resolved |
| 2020-01-24 13:35 | jarmendariz | Fixed in Version | => 3.0PR20Q2 |
| 2020-01-24 13:35 | jarmendariz | Fixed in SCM revision | => c5ff57ca6732 |
| 2020-01-24 13:35 | jarmendariz | Resolution | open => fixed |
| 2020-01-28 13:22 | alostale | Review Assigned To | => alostale |
| 2020-01-28 13:22 | alostale | Status | resolved => closed |
| 2020-04-08 10:58 | jarmendariz | Relationship added | related to 0043705 |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |