Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Story #11854: Clean code - Clean up and upgrade to Vite build system #1920

Merged
merged 9 commits into from
Jul 5, 2024
Merged

Story #11854: Clean code - Clean up and upgrade to Vite build system #1920

merged 9 commits into from
Jul 5, 2024

Conversation

ebernard
Copy link
Contributor

No description provided.

@ebernard ebernard marked this pull request as draft June 26, 2024 10:03
marob
marob reviewed Jun 26, 2024
View reviewed changes
ui/ui-frontend/package.json Show resolved Hide resolved
ui/ui-frontend/angular.json Show resolved Hide resolved
ui/ui-frontend/package.json Show resolved Hide resolved
@vitam-devops
Copy link
Collaborator

vitam-devops commented Jun 26, 2024
edited
Loading

Logo
Checkmarx One – Scan Summary & Details260cd363-60b2-485b-856a-873d63a9798f

New Issues

Severity Issue Source File / Package Checkmarx Insight
HIGH CVE-2019-15599 Npm-tree-kill-1.2.1 Vulnerable Package
HIGH CVE-2020-28469 Npm-glob-parent-3.1.0 Vulnerable Package
HIGH CVE-2020-28502 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2020-36048 Npm-engine.io-3.2.1 Vulnerable Package
HIGH CVE-2020-36049 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2020-7660 Npm-serialize-javascript-1.9.1 Vulnerable Package
HIGH CVE-2020-7788 Npm-ini-1.3.5 Vulnerable Package
HIGH CVE-2021-23382 Npm-postcss-7.0.14 Vulnerable Package
HIGH CVE-2021-23424 Npm-ansi-html-0.0.7 Vulnerable Package
HIGH CVE-2021-31597 Npm-xmlhttprequest-ssl-1.5.5 Vulnerable Package
HIGH CVE-2022-2421 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2022-24771 Npm-node-forge-0.10.0 Vulnerable Package
HIGH CVE-2022-24772 Npm-node-forge-0.10.0 Vulnerable Package
HIGH CVE-2022-25858 Npm-terser-3.17.0 Vulnerable Package
HIGH CVE-2022-25881 Npm-http-cache-semantics-3.8.1 Vulnerable Package
HIGH CVE-2022-25883 Npm-semver-6.3.0 Vulnerable Package
HIGH CVE-2022-25883 Npm-semver-6.0.0 Vulnerable Package
HIGH CVE-2022-37599 Npm-loader-utils-1.2.3 Vulnerable Package
HIGH CVE-2022-37601 Npm-loader-utils-1.2.3 Vulnerable Package
HIGH CVE-2022-37603 Npm-loader-utils-1.2.3 Vulnerable Package
HIGH CVE-2023-32695 Npm-socket.io-parser-3.2.0 Vulnerable Package
HIGH CVE-2023-45133 Npm-babel-traverse-6.26.0 Vulnerable Package
HIGH CVE-2024-29180 Npm-webpack-dev-middleware-3.6.2 Vulnerable Package
HIGH CVE-2024-38355 Npm-socket.io-2.1.1 Vulnerable Package
HIGH CVE-2024-4068 Npm-braces-2.3.2 Vulnerable Package
HIGH Cx347a3da7-ba99 Npm-node-forge-0.10.0 Vulnerable Package
HIGH TestSebas /Dockerfile: 11 Test Sebas
HIGH TestSebas /Dockerfile: 10 Test Sebas
HIGH TestSebas /Dockerfile: 10 Test Sebas
MEDIUM CVE-2019-16769 Npm-serialize-javascript-1.9.1 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-6.10.0 Vulnerable Package
MEDIUM CVE-2020-15366 Npm-ajv-5.5.2 Vulnerable Package
MEDIUM CVE-2020-28481 Npm-socket.io-2.1.1 Vulnerable Package
MEDIUM CVE-2020-7608 Npm-yargs-parser-11.1.1 Vulnerable Package
MEDIUM CVE-2020-7693 Npm-sockjs-0.3.19 Vulnerable Package
MEDIUM CVE-2021-23364 Npm-browserslist-4.5.5 Vulnerable Package
MEDIUM CVE-2021-23368 Npm-postcss-7.0.14 Vulnerable Package
MEDIUM CVE-2021-23495 Npm-karma-4.1.0 Vulnerable Package
MEDIUM CVE-2021-4231 Npm-@angular/core-8.2.14 Vulnerable Package
MEDIUM CVE-2022-0122 Npm-node-forge-0.10.0 Vulnerable Package
MEDIUM CVE-2022-0437 Npm-karma-4.1.0 Vulnerable Package
MEDIUM CVE-2022-21704 Npm-log4js-4.5.1 Vulnerable Package
MEDIUM CVE-2022-24773 Npm-node-forge-0.10.0 Vulnerable Package
MEDIUM CVE-2022-41940 Npm-engine.io-3.2.1 Vulnerable Package
MEDIUM CVE-2023-44270 Npm-postcss-7.0.14 Vulnerable Package
MEDIUM CVE-2024-28863 Npm-tar-4.4.19 Vulnerable Package
MEDIUM CVE-2024-29415 Npm-ip-2.0.0 Vulnerable Package
MEDIUM CVE-2024-29415 Npm-ip-1.1.5 Vulnerable Package
LOW CVE-2020-15262 Npm-webpack-subresource-integrity-1.1.0-rc.6 Vulnerable Package
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 1 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True
LOW Logging of Sensitive Data /ansible.cfg: 2 To keep sensitive values out of logs, tasks that expose them need to be marked defining 'no_log' and setting to True

Fixed Issues

Severity Issue Source File / Package
HIGH CVE-2022-29078 Npm-ejs-2.7.4
HIGH CVE-2024-33883 Npm-ejs-2.7.4
HIGH Cx35ef42d7-054c Npm-ejs-2.7.4

@ebernard ebernard force-pushed the chore_upgrade_build_system branch 4 times, most recently from 6990930 to e3a103a Compare June 26, 2024 14:46
@ebernard ebernard marked this pull request as ready for review June 28, 2024 09:22
@GiooDev GiooDev changed the title Clean up and upgrade to Vite build system Story #11854: Clean code - Clean up and upgrade to Vite build system Jun 28, 2024
@GiooDev GiooDev added this to the IT 138 milestone Jun 28, 2024
marob
marob reviewed Jul 1, 2024
View reviewed changes
ui/ui-frontend/angular.json Show resolved Hide resolved
ui/ui-frontend/angular.json Show resolved Hide resolved
ui/ui-frontend/angular.json Outdated Show resolved Hide resolved
ui/ui-frontend/package.json Show resolved Hide resolved
ui/ui-frontend/package.json Show resolved Hide resolved
@marob marob mentioned this pull request Jul 1, 2024
Draft
12 tasks
@ebernard ebernard force-pushed the chore_upgrade_build_system branch 2 times, most recently from a3e4d11 to cce6da8 Compare July 1, 2024 16:35
marob
marob reviewed Jul 1, 2024
View reviewed changes
ui/ui-frontend/package.json Outdated Show resolved Hide resolved
ui/ui-frontend/package.json Outdated Show resolved Hide resolved
@ebernard ebernard force-pushed the chore_upgrade_build_system branch from cce6da8 to 9adccdb Compare July 2, 2024 09:40
@ebernard ebernard force-pushed the chore_upgrade_build_system branch 2 times, most recently from 1d73e14 to 87ade84 Compare July 2, 2024 14:34
marob
marob approved these changes Jul 2, 2024
View reviewed changes
pom.xml Show resolved Hide resolved
@ebernard ebernard force-pushed the chore_upgrade_build_system branch from 87ade84 to 5a364df Compare July 3, 2024 06:54
@ebernard ebernard force-pushed the chore_upgrade_build_system branch from 3937c0c to 024909c Compare July 4, 2024 15:34
@ebernard ebernard merged commit 05f1080 into develop Jul 5, 2024
9 checks passed
@ebernard ebernard deleted the chore_upgrade_build_system branch July 5, 2024 08:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@marob marob marob approved these changes

@Regzox Regzox Regzox approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
IT 138
Development

Successfully merging this pull request may close these issues.
5 participants
@ebernard @vitam-devops @marob @Regzox @GiooDev