[CVE-2022-24999] Resolve qs from 6.5.3 to 6.11.0 #3450
Merged
abbyhu2000 merged 5 commits intoopensearch-project:2.xfrom Feb 18, 2023
Merged
[CVE-2022-24999] Resolve qs from 6.5.3 to 6.11.0 #3450abbyhu2000 merged 5 commits intoopensearch-project:2.xfrom
abbyhu2000 merged 5 commits intoopensearch-project:2.xfrom
Conversation
ananzh
added
cve
Codecov Report
📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more @@ Coverage Diff @@
## 2.x #3450 +/- ##
=======================================
Coverage 66.48% 66.49%
=======================================
Files 3203 3203
Lines 61397 61397
Branches 9453 9453
=======================================
+ Hits 40821 40823 +2
+ Misses 18315 18313 -2
Partials 2261 2261
Flags with carried forward coverage won't be shown. Click here to find out more.
Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
joshuarrrr
reviewed
Feb 17, 2023
| - [CVE-2022-25860] Bump simple-git from 3.15.1 to 3.16.0 ([#3345](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3345)) | ||
| - [CVE-2020-36632] [REQUIRES PLUGIN VALIDATION] Bump flat from 4.1.1 to 5.0.2 ([#3419](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3419)). To the best of our knowledge, this is a non-breaking change, but if your plugin relies on `mocha` tests, validate that they still work correctly (and plan to migrate them to `jest` [in preparation for `mocha` deprecation](https://github.com/opensearch-project/OpenSearch-Dashboards/issues/1572). | ||
| - [CVE-2023-25166] Bump formula from 3.0.0 to 3.0.1 ([#3416](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3416)) | ||
| - [CVE-2022-24999] Resolve qs to 6.11.0 in 2.x ([#3450](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3450)) |
Member
There was a problem hiding this comment.
Suggested change
| - [CVE-2022-24999] Resolve qs to 6.11.0 in 2.x ([#3450](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3450)) | |
| - [CVE-2022-24999] Resolve qs from 6.5.3 to 6.11.0 ([#3450](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3450)) |
kristenTian
previously approved these changes
Feb 17, 2023
Issue resolved: opensearch-project#3449 Signed-off-by: Anan Zhuang <ananzh@amazon.com>
Signed-off-by: Anan Zhuang <ananzh@amazon.com>
ananzh
changed the title
abbyhu2000
approved these changes
Feb 18, 2023
kristenTian
approved these changes
Feb 18, 2023
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Issues Resolved
#3449
Check List
yarn test:jestyarn test:jest_integrationyarn test:ftr