Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps: perform yarn upgrade #12484

Closed
wants to merge 1 commit into from
Closed

deps: perform yarn upgrade #12484

wants to merge 1 commit into from

Conversation

vince-fugnitto
Copy link
Member

What it does

The pull-request performs a yarn upgrade to resolve a known vulnerability with engine.io.
The changes also better reflect what downstream dependents will pull when they build their own Theia-based products.

  • "3PP License Check" review

How to test

  • confirm that CI successfully passes

Review checklist

Reminder for reviewers

@vince-fugnitto vince-fugnitto added security issues related to security dependencies pull requests that update a dependency file labels May 4, 2023
@vince-fugnitto
Copy link
Member Author

I've noticed with the updates that there are errors regarding "maximum call stack size exceeded":

image

@vince-fugnitto vince-fugnitto force-pushed the vf/yarn-upgrade-engineio branch from ecbbb43 to bf03cb3 Compare May 4, 2023 15:03
@vince-fugnitto
deps: perform yarn upgrade
c78c947 
The commit performs a `yarn upgrade` to resolve a known vulnerability
with `engine.io`. The changes also better reflect what downstream
dependents will pull when they build their own Theia-based products.

Signed-off-by: vince-fugnitto <vincent.fugnitto@ericsson.com>
@vince-fugnitto vince-fugnitto force-pushed the vf/yarn-upgrade-engineio branch from bf03cb3 to c78c947 Compare May 8, 2023 12:15
@paul-marechal paul-marechal mentioned this pull request May 8, 2023
Closed
paul-marechal
paul-marechal previously approved these changes May 8, 2023
View reviewed changes
@paul-marechal paul-marechal dismissed their stale review May 8, 2023 22:30

Missed the failing 3pp check

@vince-fugnitto vince-fugnitto mentioned this pull request May 24, 2023
Merged
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@paul-marechal paul-marechal paul-marechal left review comments

Assignees
No one assigned
Labels
dependencies pull requests that update a dependency file security issues related to security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@vince-fugnitto @paul-marechal