Skip to content

Update build dependencies to remove vulnerabilities #503

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 25, 2021
Merged

Update build dependencies to remove vulnerabilities #503

merged 2 commits into from
Oct 25, 2021

Conversation

@renonick87
Copy link
Contributor

@renonick87 renonick87 commented Oct 22, 2021

Risk

This PR makes no API changes.

Testing Plan

  • I have verified that I have not introduced new warnings in this PR (or explain why below)
  • I have verified that this PR passes lint validation
  • I have run the unit tests with this PR
  • I have tested this PR against Core and verified behavior (if applicable, if not applicable, explain why below).

Core Tests

Tested against Manticore v2.8.0.

Summary

This PR resolves security vulnerabilities in node packages used in the library's build process. There are 2 moderate severity vulnerabilities left untouched in the linter's dependencies. This is because updating them would require increasing the minimum node version.

CLA

@renonick87 renonick87 merged commit 0ea3941 into release/1.5.0_RC Oct 25, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@crokita crokita crokita approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@renonick87 @crokita