[HOLD for payment for #23298] [$1000] Upgrade Electron to latest

[roryabraham]

HOLD for payment for #23298

Problem

There is a known vulnerability in our current version of Electron. Furthermore, we are currently several major versions behind.

Solution

Upgrade Electron to the latest stable version.

Upwork Automation - Do Not Edit

• Upwork Job URL: https://www.upwork.com/jobs/~017a4d213a61b1d4d6
• Upwork Job ID: 1671967517911908352
• Last Price Increase: 2023-06-29

[melvin-bot]

Job added to Upwork: https://www.upwork.com/jobs/~017a4d213a61b1d4d6

[melvin-bot]

Triggered auto assignment to @conorpendergrast (External), see https://stackoverflow.com/c/expensify/questions/8582 for more details.

[melvin-bot]

Triggered auto assignment to Contributor-plus team member for initial proposal review - @Santhosh-Sellavel (External)

[situchan]

Is this volunteer based or proposal needed following template?

[roryabraham]

Proposal needed following template please

[Santhosh-Sellavel]

@situchan Proposal could have additional details like an Overview of changes we should make, and anything we should be aware of in the process. Were there any deprecations in API we use, are there any known issues, etc?

[AbeerAhmad]

Please re-state the problem that we are trying to solve in this issue.

Upgrade Electron to latest

What is the root cause of that problem?

as defined in the description, There is a known vulnerability in our current version of Electron. Furthermore, we are currently several major versions behind.

What changes do you think we should make in order to solve the problem?

first updating two libraries using
Step1.
npm install electron@latest
it installed electron version "electron": "^25.2.0",
npm install update-electron-app
this one is optional to let the users know about the new app version availability
Step2. Remove expired or libraries that are no longer supported and install compatible versions
icons became unclickable which got fixed apart from that app is working fine and not dependency update needed
Step3.Need to test the app's whole functionality to check if it's working fine and with no Crashes, will submit the PR.
Zero App crash

[roryabraham]

Just requested some changes in the PR to close https://expensify.slack.com/archives/C07J32337/p1691436719756409, but we should be close

[conorpendergrast]

Still held!

[conorpendergrast]

The PR for #23298 has been merged! Still waiting for that to be on production for 7 days to pay this one.

[melvin-bot]

Triggered auto assignment to @joekaufmanexpensify (Bug), see https://stackoverflow.com/c/expensify/questions/14418 for more details.

[conorpendergrast]

@joekaufmanexpensify I'm on parental leave; re-assigning! I missed that this should be paid, with regression penalties

[joekaufmanexpensify]

All set to issue payment here. Because of the regression, default price here drops by 50%. This means we need to pay:

• @Santhosh-Sellavel - $500 for C+ review (reduced by 50% from $1,000).
• @Skalakid's payment is handled separately because they're with an agency.

[joekaufmanexpensify]

@Santhosh-Sellavel could you please request $500 via NewDot and confirm here once complete?

[roryabraham]

@conorpendergrast this is ready to pay out and close

[joekaufmanexpensify]

@Santhosh-Sellavel is OOO until next week. Bumping to weekly until they're back and can request money via NewDot.

[joekaufmanexpensify]

Bumped issue in Slack

[Santhosh-Sellavel]

Will request this week!

[joekaufmanexpensify]

@Santhosh-Sellavel could you please provide an update on this? Would love to close this one out.

[Santhosh-Sellavel]

Requested on ND

[JmillsExpensify]

$500 payment approved for @Santhosh-Sellavel based on BZ summary.

[joekaufmanexpensify]

Closing as this is all set!