search

angular-ui / bootstrap

PLEASE READ THE PROJECT STATUS BELOW. Native AngularJS (Angular) directives for Bootstrap. Smaller footprint (20kB gzipped), no 3rd party JS dependencies (jQuery, bootstrap JS) required. Please read the README.md file before submitting an issue!
http://angular-ui.github.io/bootstrap/
MIT License
14.27k stars 6.73k forks source link

Update dependencies #6336

Closed alippai closed 7 years ago

alippai commented 7 years ago

The current versions are not secure: https://david-dm.org/angular-ui/bootstrap?type=dev Except the karma upgrade nothing should break the build/test.

wesleycho commented 7 years ago

The lack of security is marked, the Markdown parser - this is not something we can do much about given the way the demo is set up.

This library is not seeing much active development currently, so if you'd like to put in the effort to try to upgrade the libraries, we'd more than be happy to accept PRs.

wesleycho commented 7 years ago

Going to close, as I have investigated upgrading deps prior and there are other issues at play - the insecure marking is not a library issue itself.