search

Videodock / cordova-plugin-chromecast

Control Chromecast from Cordova
Other
1 stars 2 forks source link

Chore / Maintenance Q2 2024 #5

Closed langemike closed 3 months ago

langemike commented 3 months ago

All dependecies are upgraded based on the version notations in package.json.

There was one dependency with a moderate severity level - which also has been upgraded.

moderate Express.js Open Redirect in malformed URLs
Package express
Patched in >=4.19.2
Dependency of express
Path express
More info https://www.npmjs.com/advisories/1096820

Chromecast SDK upgrade

We have upgraded the IOS SDK from 4.6.1 to 4.8.1. I have tested this internally on a real iPhone. Android Sender 21.4.0 is still the latest version. So this version has not been upgraded.

Ticket: https://videodock.atlassian.net/browse/MAINT-528

langemike commented 3 months ago

Based on roy his suggestion. @VincentCouzij can you enable dependabot for this project?

royschut commented 3 months ago

Based on roy his suggestion. @VincentCouzij can you enable dependabot for this project?

I think we need a dependabot.yml for that (see other projects), but perhaps we don't have it because we're only using devDeps?

langemike commented 3 months ago

I think we need a dependabot.yml for that

@royschut ah yes. I forgot. I added it, so it is streamlined with our other projects. Since we give devDependecies the same treatment as dependencies (although I consider devDependecies less severe_