search

LSSTDESC / desc-data-portal

LSST DESC Data Portal web app and the associated documentation and example notebooks.
https://data.lsstdesc.org
BSD 3-Clause "New" or "Revised" License
7 stars 2 forks source link

fix JQuery vulnerability #103

Open heather999 opened 7 months ago

heather999 commented 7 months ago

Done by rebuilding the docker images and making sure the clear the ubuntu apt cache for good measure. Preliminary scan indicates there are no vulnerabilities but waiting for NERSC's confirmation.

heather999 commented 7 months ago

Also need to upgrade flask due to vulnerability: https://github.com/LSSTDESC/desc-data-portal/security/dependabot/2

heather999 commented 7 months ago

and needed to replace web/portal/static/jquery.min.js by downloading a more recent minified version from https://releases.jquery.com/jquery/