[jira] [Resolved] (YUNIKORN-2496) Fix security issues in website javascript
[ https://issues.apache.org/jira/browse/YUNIKORN-2496?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Wilfred Spiegelenburg resolved YUNIKORN-2496. - Fix Version/s: 1.6.0 Resolution: Fixed Change committed all dependabot alerts closed > Fix security issues in website javascript > - > > Key: YUNIKORN-2496 > URL: https://issues.apache.org/jira/browse/YUNIKORN-2496 > Project: Apache YuniKorn > Issue Type: Task > Components: website >Reporter: Wilfred Spiegelenburg >Assignee: Wilfred Spiegelenburg >Priority: Major > Labels: pull-request-available > Fix For: 1.6.0 > > > The change to pnmp triggered a large number of security alerts from > dependabot. > 7 could be fixed directly by the 4 PRs opened by dependabot. 6 need manual > intervention. > The change also included an upgrade of the Algolia search component to 3.x. > That change prevent running {{{}pnpm audit{}}}. > Docusaurus 3.x also contains a large number of backward incompatible changes > and an upgrade is planned separately. Using the Algolia 3.x dependency > already pushes some of these changes and should be reverted to Algolia 2.x > same as the rest of Docusaurus environment. -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@yunikorn.apache.org For additional commands, e-mail: dev-h...@yunikorn.apache.org
[jira] [Created] (YUNIKORN-2497) Update node.js to 18.19.1
Wilfred Spiegelenburg created YUNIKORN-2497: --- Summary: Update node.js to 18.19.1 Key: YUNIKORN-2497 URL: https://issues.apache.org/jira/browse/YUNIKORN-2497 Project: Apache YuniKorn Issue Type: Task Components: website Reporter: Wilfred Spiegelenburg Assignee: Wilfred Spiegelenburg Node 18.x is a LTS version. The version 18.17 has been superseded with two other releases 18.18 and 18.19. Both have some CVE fixes which we should be including for stability. Moving the build to 18.19 (currently 18.19.1) -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@yunikorn.apache.org For additional commands, e-mail: dev-h...@yunikorn.apache.org
[jira] [Resolved] (YUNIKORN-2497) Update node.js to 18.19.1
[ https://issues.apache.org/jira/browse/YUNIKORN-2497?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Yu-Lin Chen resolved YUNIKORN-2497. --- Resolution: Fixed > Update node.js to 18.19.1 > - > > Key: YUNIKORN-2497 > URL: https://issues.apache.org/jira/browse/YUNIKORN-2497 > Project: Apache YuniKorn > Issue Type: Task > Components: website >Reporter: Wilfred Spiegelenburg >Assignee: Wilfred Spiegelenburg >Priority: Minor > Labels: pull-request-available > Fix For: 1.6.0 > > > Node 18.x is a LTS version. The version 18.17 has been superseded with two > other releases 18.18 and 18.19. Both have some CVE fixes which we should be > including for stability. > Moving the build to 18.19 (currently 18.19.1) -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: dev-unsubscr...@yunikorn.apache.org For additional commands, e-mail: dev-h...@yunikorn.apache.org