search

plotly / plotly.js

Open-source JavaScript charting library behind Plotly and Dash
https://plotly.com/javascript/
MIT License
17.01k stars 1.86k forks source link

Security warnings in static-module and minimist #4796

Closed nicolaskruchten closed 4 years ago

nicolaskruchten commented 4 years ago

We need to resolve https://github.com/plotly/plotly.py/issues/2385 and https://github.com/plotly/jupyterlab-chart-editor/issues/47 by avoiding https://www.npmjs.com/advisories/758 and https://www.npmjs.com/advisories/1179

nicolaskruchten commented 4 years ago

Current strategy detailed in https://github.com/scijs/cwise/pull/25#issuecomment-642972416

nicolaskruchten commented 4 years ago

@archmoj what's our strategy for https://www.npmjs.com/advisories/1179 ?

archmoj commented 4 years ago

@archmoj what's our strategy for https://www.npmjs.com/advisories/1179 ?

@nicolaskruchten Thanks for the question. That would be fixed as part of cwise patch.