kenmirrors/MagicMirror
1
0
Fork 0
mirror of https://github.com/MichMich/MagicMirror.git synced 2025-06-27 03:39:55 +00:00
Code Issues Projects Releases Wiki Activity

Update Electron based on a severity vulnerability (develop) (#3207)

Browse Source 
I just see `electron` package used in develop branch have `1 high
severity vulnerability`

Detail is [there](https://github.com/advisories/GHSA-j7hp-h8jx-5ppr)

We can patch it with electron v26.2.2 (last version at this day) and
will correct it

(ChangeLog is not needed in this case)

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: veeck <michael.veeck@nebenan.de>
This commit is contained in:
Bugsounet - Cédric 2023-09-26 23:12:09 +02:00 committed by GitHub
parent a3c2e7b816
commit e530c783f8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 570 additions and 507 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
CHANGELOG.md
View File

@ -31,13 +31,13 @@ _This release is scheduled to be released on 2023-10-01._
- Update roboto fonts to version v5 - Update roboto fonts to version v5
- Update issue template - Update issue template
- Update dependencies incl. electron to v26 - Update dev/dependencies incl. electron to v26
- Replace pretty-quick by lint-staged (<https://github.com/azz/pretty-quick/issues/164>) - Replace pretty-quick by lint-staged (<https://github.com/azz/pretty-quick/issues/164>)
- Update engine node >=18. v16 reached it's end of life. (#3170) - Update engine node >=18. v16 reached it's end of life. (#3170)
- Update typescript definition for modules - Update typescript definition for modules
- Cleaned up nunjuck templates - Cleaned up nunjuck templates
- Replace `node-fetch` with internal fetch (#2649) and remove `digest-fetch` - Replace `node-fetch` with internal fetch (#2649) and remove `digest-fetch`
- Updated the French translation according to the English file. - Update the French translation according to the English file.
### Fixed ### Fixed

1059
package-lock.json generated
View File

File diff suppressed because it is too large Load Diff

14
package.json
View File

@ -51,31 +51,31 @@
"devDependencies": { "devDependencies": {
"eslint-config-prettier": "^9.0.0", "eslint-config-prettier": "^9.0.0",
"eslint-plugin-import": "^2.28.1", "eslint-plugin-import": "^2.28.1",
"eslint-plugin-jest": "^27.2.3", "eslint-plugin-jest": "^27.4.0",
"eslint-plugin-jsdoc": "^46.5.1", "eslint-plugin-jsdoc": "^46.8.2",
"eslint-plugin-prettier": "^5.0.0", "eslint-plugin-prettier": "^5.0.0",
"express-basic-auth": "^1.2.1", "express-basic-auth": "^1.2.1",
"husky": "^8.0.3", "husky": "^8.0.3",
"jest": "^29.6.4", "jest": "^29.7.0",
"jsdom": "^22.1.0", "jsdom": "^22.1.0",
"lint-staged": "^14.0.1", "lint-staged": "^14.0.1",
"lodash": "^4.17.21", "lodash": "^4.17.21",
"playwright": "^1.37.1", "playwright": "^1.38.1",
"prettier": "^3.0.3", "prettier": "^3.0.3",
"sinon": "^15.2.0", "sinon": "^16.0.0",
"stylelint": "^15.10.3", "stylelint": "^15.10.3",
"stylelint-config-standard": "^34.0.0", "stylelint-config-standard": "^34.0.0",
"stylelint-prettier": "^4.0.2", "stylelint-prettier": "^4.0.2",
"suncalc": "^1.9.0" "suncalc": "^1.9.0"
}, },
"optionalDependencies": { "optionalDependencies": {
"electron": "^26.1.0" "electron": "^26.2.2"
}, },
"dependencies": { "dependencies": {
"colors": "^1.4.0", "colors": "^1.4.0",
"console-stamp": "^3.1.2", "console-stamp": "^3.1.2",
"envsub": "^4.1.0", "envsub": "^4.1.0",
"eslint": "^8.48.0", "eslint": "^8.50.0",
"express": "^4.18.2", "express": "^4.18.2",
"express-ipfilter": "^1.3.1", "express-ipfilter": "^1.3.1",
"feedme": "^2.0.2", "feedme": "^2.0.2",