Open aimador opened 2 years ago
Hello,
The warning is still here for the last minor release 4.3.2.
Still present in 4.4.2
And in 4.5.2
Version 9.18.5 (which RC is using) and also Version 10 are both EOL and do have known vulnerabilities. Upgrade to Version 11 is necessary.
See https://github.com/highlightjs/highlight.js/blob/main/SECURITY.md
@debdutdeb @dudanogueira @tassoevan @sampaiodiego Could someone please take a look at this? This is security relevant and completely ignored....
Hello,
Rocket version 4.8.2
In admin settings -> message , link to version 9.18.5 is still present so I guess version 11 is not implemented yet
highlight is pretty useful, you dev people know it better then anyone ;-)
Regards,
This is still the case in 6.0.0.
This is still the case in 6.2.2.
Still used in 6.5.3
Description:
While building the latest RC release on CentOS 7 I get the following information:
----------------------------------
Verion 9 of Highlight.js has reached EOL. It will no longer be supported or receive security updates in the future. Please upgrade to version 10 or encourage your indirect dependencies to do so.
For more info:
https://github.com/highlightjs/highlight.js/issues/2877 https://github.com/highlightjs/highlight.js/blob/master/VERSION_10_UPGRADE.md
----------------------------------
The build works, but highlight.js should be updated IMHO.
Steps to reproduce:
Expected behavior:
No EOL warning.
Actual behavior:
see above
Server Setup Information:
Client Setup Information