Skip to content

chore(packages): update packages with critical and high vulnerabilities #1689

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
ajimae wants to merge 3 commits into from
Closed

chore(packages): update packages with critical and high vulnerabilities #1689

ajimae wants to merge 3 commits into from

Conversation

@ajimae
Copy link
Member

@ajimae ajimae commented May 17, 2021

Summary

Some npm package dependencies were raised by Github security advisory to have high and critical security vulnerability levels.
In response to this, I was tasked with updating the package dependencies to a version that has a fix (patch) for the vulnerability.

Description

I updated all package dependencies with critical and high vulnerability level by adding package dependencies and corresponding patch versions into the package.json resolution block.

Note

This should be tested thoroughly to ensure no breaking changes will arise due updated package dependencies

Todo

  • Tests
    • Unit
    • Integration
    • Acceptance
  • Documentation
  • Type label for the PR

@ajimae
chore(packages): update packages with critical and high vulnerabilities
b6f8524 
- update all packages with critical and high vulnerability level
- add package enteries into resolution block in package.json
@ajimae ajimae requested a review from a team May 17, 2021 03:33
ajimae added 2 commits May 17, 2021 05:35
@ajimae
chore(packages): update packages with critical and high vulnerabilities
6d683dd 
- update all packages with critical and high vulnerability level
- add package enteries into resolution block in package.json
@ajimae
Merge branch 'chore/update-packages' of https://github.com/commerceto…
3641a27 
…ols/nodejs into chore/update-packages
@barbara79 barbara79 mentioned this pull request May 17, 2021
Merged
5 tasks
@ajimae ajimae closed this in #1690 May 17, 2021
@tdeekens tdeekens mentioned this pull request Mar 26, 2025
Merged
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Type: Maintenance

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ajimae