UK-Export-Finance / dtfs2

Digital Trade Finance
MIT License
11 stars 1 forks source link

fix(DTFS2-7375): codebase dependencies vulnerabilities #3531

Closed abhi-markan closed 1 month ago

abhi-markan commented 1 month ago

Introduction โœ๏ธ

This PR addresses reported vulnerabilities by triaging GitHub code scanning alerts related to various package dependencies, necessitating either minor or major version updates.

To ensure effective updates, I have removed the root package-lock.json ๐Ÿ“ฆ, which caused some related errors. This PR aims to resolve these vulnerabilities ๐Ÿ›ก๏ธ, enhance code readability ๐Ÿ“š, and significantly reduce duplicated code in libs/common, particularly around MongoDB connectivity.

Resolution โœ”๏ธ

This enables any microservice to either use an existing connection or establish a new one to the specified MongoDB database, reducing the number of threads required for new connections from different microservices or independent applications (e.g., utils/**).

Miscellaneous โž•

sonarcloud[bot] commented 1 month ago

Quality Gate Passed Quality Gate passed

Issues
5 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud