Skip to content
This repository was archived by the owner on Jun 13, 2023. It is now read-only.

Resolve Vuln's [1/N]#14

Closed
rinoc wants to merge 2 commits intoreleasefrom
rj-resolve-vulns
Closed

Resolve Vuln's [1/N]#14
rinoc wants to merge 2 commits intoreleasefrom
rj-resolve-vulns

Conversation

@rinoc
Copy link

@rinoc rinoc commented May 11, 2022
edited
Loading

Updated a few dependencies and changed few things to let me build on my machine.

storybook was an upgrade that seems like it was a bottleneck for the other security upgrades.
After this is merged, hopefully we can start merging the dependabot PR's and see how far that takes us.

TO Test, see the instructions from this PR:
#15

dependabot bot and others added 2 commits February 11, 2022 10:37
@dependabot
Bump handlebars from 4.0.11 to 4.7.7
a3f8135 
Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.11 to 4.7.7.
- [Release notes](https://github.com/wycats/handlebars.js/releases)
- [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md)
- [Commits](handlebars-lang/handlebars.js@v4.0.11...v4.7.7)

---
updated-dependencies:
- dependency-name: handlebars
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@rinoc
update some dependencies
bb3e7cc
@rinoc rinoc requested a review from brandonmowat as a code owner May 11, 2022 16:17
@rinoc rinoc requested review from allenbmw and jerridan May 11, 2022 19:36
@allenbmw allenbmw added the dependencies Pull requests that update a dependency file label May 11, 2022
dandalf-the-engineer
dandalf-the-engineer approved these changes May 13, 2022
View reviewed changes
Copy link

@dandalf-the-engineer dandalf-the-engineer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐉

allenbmw
allenbmw approved these changes May 13, 2022
View reviewed changes
Copy link

@allenbmw allenbmw left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Formatting in the rollup config oughta be addressed... but that wont stop ah 👍 cuz we'll be needing this soon

@arsalasif arsalasif removed the request for review from brandonmowat July 14, 2022 19:04
@jerridan
Copy link

jerridan commented Nov 15, 2022

Chatted with @rinoc, he doesn't plan on merging this as it's gone pretty stale.

@jerridan jerridan closed this Nov 15, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@jerridan jerridan Awaiting requested review from jerridan

2 more reviewers

@allenbmw allenbmw allenbmw approved these changes

@dandalf-the-engineer dandalf-the-engineer dandalf-the-engineer approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@rinoc rinoc

Labels

dependencies Pull requests that update a dependency file size/XXL

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@rinoc @jerridan @allenbmw @dandalf-the-engineer