Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0047411 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| design defect | [POS2] Core | minor | have not tried | 2021-07-19 12:59 | 2024-01-09 07:35 | |||
| Reporter | alostale | View Status | public | |||||
| Assigned To | Triage Platform Base | |||||||
| Priority | normal | Resolution | out of date | Fixed in Version | ||||
| Status | closed | Fix in branch | Fixed in SCM revision | |||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Review Assigned To | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0047411: npm audit reports issues for CRA | |||||||
| Description | When npm audit is executed, some issues are reported for CRA dependencies. Transitory dependencies with those issues cannot be easily updated (without ejecting CRA) and it seems CRA's team is not planning to get those fixed claiming they are not exploitable [1]. [1] https://github.com/facebook/create-react-app/issues/11174 [^] | |||||||
| Steps To Reproduce | Run npm audit in core2:$ npm audit --production ... found 8 vulnerabilities (6 moderate, 2 high) in 2010 scanned packages run `npm audit fix` to fix 2 of them. 1 vulnerability requires semver-major dependency updates. 5 vulnerabilities require manual review. See the full report for details. | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
|||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||
 Relationships |
|
Notes |
|
| There are no notes attached to this issue. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2021-07-19 12:59 | alostale | New Issue | |
| 2021-07-19 12:59 | alostale | Assigned To | => Retail |
| 2021-07-19 12:59 | alostale | Triggers an Emergency Pack | => No |
| 2021-07-19 12:59 | alostale | Relationship added | related to 0046777 |
| 2021-07-19 13:00 | alostale | Description Updated | View Revisions |
| 2021-07-20 07:00 | alostale | Steps to Reproduce Updated | View Revisions |
| 2021-07-20 07:04 | alostale | Relationship added | related to 0047415 |
| 2021-08-11 16:26 | shuehner | Relationship added | related to 0047535 |
| 2021-10-18 11:26 | guilleaer | Assigned To | Retail => platform |
| 2021-10-18 11:26 | guilleaer | Status | new => acknowledged |
| 2022-02-01 08:07 | alostale | Assigned To | platform => Triage Platform Base |
| 2024-01-09 07:35 | alostale | Relationship added | duplicate of 0053862 |
| 2024-01-09 07:35 | alostale | Status | acknowledged => scheduled |
| 2024-01-09 07:35 | alostale | Status | scheduled => closed |
| 2024-01-09 07:35 | alostale | Resolution | open => out of date |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |