Slax - Maintenance - June 2024

[bford002]

requires Slax dependabot alerts

Background

Slax currently has 0 new security vulnerabilities (0 critical, 0 high, 0 moderate, and 0 low). The purpose of this ticket is to address Slax's security vulnerabilities.

Closed last month: 0 Critical: 0 High: 0 Moderate: 0 Low: 0

Open Dependabot pull requests: Bump ex_doc from 0.32.0 to 0.34.0 Bump stream_data from 0.6.0 to 1.1.0 Bump plug from 1.15.3 to 1.16.0 Bump phoenix_ecto from 4.4.0 to 4.6.1 Bump credo from 1.7.5 to 1.7.6 Bump oban from 2.15.4 to 2.17.10 Bump castore from 1.0.6 to 1.0.7 Bump phoenix from 1.6.16 to 1.7.12 Bump plug_cowboy from 2.5.2 to 2.7.1 Bump quantum from 3.4.0 to 3.5.3

Scenario: Update security vulnerabilities

Given I am an Engineer

• [ ] When I manually address dependency conflicts listed here
• [ ] Then I test by running locally
• [ ] And I merge to master and test in production

QA / UAT Note

Remember to add a comment when passing this forward with links to:

• [ ] the review app
• [ ] the pull request itself

[annakh3]

Since this work carries over to the next month, moving June over to Won't Do and prioritizing July ticket.