-
-
Notifications
You must be signed in to change notification settings - Fork 191
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Audit for security issues #321
Labels
Comments
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 12, 2018
- npm: Update devDeps - npm: Update `package-lock.json` including update to dependency `deep-extend` with npm audit security warning (partial fix for indexeddbshim#321)
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 13, 2018
…ecurity audit)
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 14, 2018
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 14, 2018
…rsion) for version 4.0.0 which improves security (part of indexeddbshim#321) - Testing: Update web-platform-tests
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 14, 2018
…rsion) for version 4.0.0 which improves security (part of indexeddbshim#321) - npm: Update grunt-node-unit (avoid peerDep warnings) - Testing: Update web-platform-tests
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
May 28, 2018
- Refactoring: Remove unnecessary `type=text/css` - Testing (Grunt): Fix clean-polyfill task (fixes indexeddbshim#322) - Testing (Grunt): Replace phantom-qunit with puppeteer-qunit - Testing (QUnit): Fix issue with QUnit 2 (move sample data into test starting file); see https://stackoverflow.com/a/38791824/271577 (fixes indexeddbshim#324) - npm: Switch unicode-10.0.0 to devDep (with copy routine); Fixes indexeddbshim#323 - npm: Update `package-lock.json` (added nested dependencies directly to our `package.json` and applied that version info in `package-lock.json` to other instances still relying on older versions) (Temporary fix for indexeddbshim#321 until Grunt and node-pre-gyp->sqlite3(->websql) update) - npm: Bump version to 3.7.0
We are now passing tests, but keeping the issue open as we shouldn't need to do this by editing |
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
Jun 5, 2018
- npm: Bump Grunt, removing need for hard-coding its util deps to avoid security issues (toward indexeddbshim#321)
brettz9
added a commit
to brettz9/IndexedDBShim
that referenced
this issue
Jun 5, 2018
- npm: Bump Grunt, removing need for hard-coding its util deps to avoid security issues (toward indexeddbshim#321)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The latest npm versions provide
npm audit
to flag security issues with dependencies and devDependencies.This bug is for tracking problematic dependencies (listing the highest level ancestor responsible); bold items will likely need action:
- -> rc -> deep-extend
- -> hawk
- -> sntp -> hoek
- -> hoek
- -> cryptiles -> boom -> hoek
- -> boom -> hoek
- -> request
- -> http-signature -> sshpk
- -> hawk
- -> sntp -> hoek
- -> hoek
- -> cryptiles -> boom -> hoek
- -> boom -> hoek
master
(reflected in update topackage.json
andpackage-lock.json
)The text was updated successfully, but these errors were encountered: