Open renaudboyer opened 3 years ago
used in
can be upgraded to ~2.2.0
used in gruntfile to validate bootstrap html documentation
Jekyll dependency and not specified in the package files, upgrading Jekyll upgrades automatically this dependency
ruby package, only present in lockfile and not in package files
used in angular-recaptcha as a dev dependency
used in Chart.js gulpfile task just to bump chart.js version: dev dependency
we used static bootstrap package files for version 3.3.7, upgrading the package.json means nothing, to upgrade we need to change the files in src/frontend/components/bootstrap. also, no problems going from 3.3.7 to 3.4.1
Update outdated libraries according to the security report.
https://github.com/OpenPaaS-Suite/esn-frontend-common-libs/security/dependabot
CRITERIA: