-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
datatables.net*
package bumps
#10152
base: dev
Are you sure you want to change the base?
Conversation
Hi there 👋, @DryRunSecurity here, below is a summary of our analysis and findings.
Note 🟢 Risk threshold not exceeded. Change Summary (click to expand)The following is a summary of changes in this pull request made by me, your security buddy 🤖. Summary: The changes in this pull request primarily focus on updating the versions of several dependencies related to the DataTables JavaScript library, which is used for creating interactive tables in the DefectDojo application. The key changes include updating the versions of DataTables.net-related dependencies, such as From an application security perspective, these changes do not immediately raise any major concerns. However, it's important to review the release notes and changelogs of the updated dependencies to ensure that there are no known security vulnerabilities or issues that need to be addressed. Additionally, it's a good practice to monitor the project's dependencies for any future updates and security advisories, and to keep the dependencies up-to-date to mitigate potential security risks. Files Changed:
Powered by DryRun Security |
Description
We have quite a few
datatables.net*
package updates pending from Dependabot, and the tests were failing due to changes in file names used by these packages. I've updated all of the packages in one go and updated the file names, but there may still be styling issues based on the latest versions.Existing PRs:
#10148
#10147
#10146
#10001
#10000
I've also removed the
drmonty-*
packages that are very old forks of 2 datatables packages, and that appear to be unused.Test results
There are some styling issues and at least 1 integration test failure. I'm trying to figure out the latter but can't successfully run integration tests locally for some reason.
Styling issues I've noticed so far:
Documentation
N/A