Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug - address vulnerabilities in documentation-framework #3794

Open
nicolethoen opened this issue Nov 1, 2023 · 1 comment · May be fixed by #4079
Open

Bug - address vulnerabilities in documentation-framework #3794

nicolethoen opened this issue Nov 1, 2023 · 1 comment · May be fixed by #4079
Assignees
@nicolethoen
Labels
bug
Milestone
Prioritized backlog

Comments

@nicolethoen
Copy link
Collaborator

nicolethoen commented Nov 1, 2023
edited
Loading

From documentation-framework/package.json

critical:

Introduced through: [email protected]
Fixed in: [email protected]

High:

Introduced through: @patternfly/[email protected][email protected][email protected]
Fix: Upgrade to [email protected]

Introduced through: [email protected]
Fixed in: [email protected]

Introduced through: [email protected]
Fixed in: [email protected], @4.1.1, @5.0.1, @6.0.1

Introduced through: @babel/[email protected], @babel/[email protected] and others
Fixed in: [email protected], @6.3.1, @7.5.2

Introduced through: [email protected]
Fixed in: [email protected], @7.1.1, @8.0.1

https://app.snyk.io/org/patternfly/project/95e300e5-89ce-41ad-9f3b-93d6d8f065ef
@nicolethoen nicolethoen added the bug label Nov 1, 2023
@wise-king-sullyman
Copy link
Collaborator

Before addressing we should probably validate how much of an issue this really is given that we don't ship org code to consumers.

The first step for trying to resolve this should be updating deps.

@wise-king-sullyman wise-king-sullyman added this to the Prioritized backlog milestone Nov 7, 2023
@nicolethoen nicolethoen linked a pull request Jun 6, 2024 that will close this issue
Open
@nicolethoen nicolethoen self-assigned this Jun 6, 2024
@nicolethoen nicolethoen linked a pull request Jun 10, 2024 that will close this issue
fix: remove codesandbox integration to fix vulnerabilities #4079
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nicolethoen nicolethoen

Labels
bug
Projects
PatternFly Issues
Status: PR Review
Milestone
Prioritized backlog
Development

Successfully merging a pull request may close this issue.

fix: remove codesandbox integration to fix vulnerabilities nicolethoen/patternfly-org
2 participants
@wise-king-sullyman @nicolethoen