-
Notifications
You must be signed in to change notification settings - Fork 7.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(core): Upgrade crypto-js to address CVE-2023-46233 #7519
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Great PR! Please pay attention to the following items before merging: Files matching
Files matching
Make sure to check off this list before asking for review. |
n8n-assistant
bot
added
core
Enhancement outside /nodes-base and /editor-ui
n8n team
Authored by the n8n team
labels
Oct 26, 2023
ivov
approved these changes
Oct 26, 2023
2 flaky tests on run #2582 ↗︎
Details:
24-ndv-paired-item.cy.ts • 1 flaky test
29-sql-editor.cy.ts • 1 flaky test
Review all test suite changes for PR #7519 ↗︎ |
✅ All Cypress E2E specs passed |
netroy
added a commit
that referenced
this pull request
Oct 26, 2023
Merged
netroy
added a commit
that referenced
this pull request
Oct 26, 2023
## [1.14.1](https://github.com/n8n-io/n8n/compare/n8n@1.14.0...n8n@1.14.1) (2023-10-26) ### Bug Fixes * **core:** Ensure execution deletion in worker lifecycle hook ([#7481](#7481)) ([b81e5b9](b81e5b9)) * **core:** Upgrade crypto-js to address CVE-2023-46233 ([#7519](#7519)) ([0c3ee47](0c3ee47)) * **editor:** Fixes the issue that Switch Node can not be created ([#7516](#7516)) ([b64146b](b64146b)) Co-authored-by: netroy <netroy@users.noreply.github.com>
Got released with |
Merged
krynble
added a commit
that referenced
this pull request
Nov 2, 2023
# [1.15.0](https://github.com/n8n-io/n8n/compare/n8n@1.14.0...n8n@1.15.0) (2023-11-02) ### Bug Fixes * **core:** Ensure execution deletion in worker lifecycle hook ([#7481](#7481)) ([742c8a8](742c8a8)) * **core:** Fix data encryption on credentials import ([#7560](#7560)) ([b350568](b350568)) * **core:** Fix issue that prevents owner logging in when using ldap ([#7408](#7408)) ([479f902](479f902)) * **core:** Handle missing resultData in runData ([#7523](#7523)) ([1055bd3](1055bd3)) * **core:** Permission check for subworkflow properly checking for workflow settings ([#7576](#7576)) ([437c95e](437c95e)) * **core:** Prevent executions from becoming forever running ([#7569](#7569)) ([9bdb85c](9bdb85c)) * **core:** Upgrade crypto-js to address CVE-2023-46233 ([#7519](#7519)) ([65e5593](65e5593)) * **editor:** Do not truncate form inputs ([#7528](#7528)) ([ae616f1](ae616f1)) * **editor:** Fix NDV close after using input select ([#7544](#7544)) ([3b5e181](3b5e181)) * **editor:** Fix NDV unexpected re-render ([#7532](#7532)) ([2853fcf](2853fcf)) * **editor:** Fix route component caching, incorrect use of array reduce method and enable WF history feature ([#7434](#7434)) ([12a89e6](12a89e6)) * **editor:** Fixes the issue that Switch Node can not be created ([#7516](#7516)) ([df89685](df89685)) * **editor:** Handle `localStorage` being blocked/unavailable ([#7348](#7348)) ([c05bc67](c05bc67)) * **Jira Software Node:** Handle missing issue types in issue types loader ([#7534](#7534)) ([9762705](9762705)) * **Switch Node:** Allow sortable Switch rules ([#7555](#7555)) ([7a56e58](7a56e58)) ### Features * **core:** Add optional Error-Output ([#7460](#7460)) ([655efea](655efea)) * **core:** Make queue mode settings configurable ([#7526](#7526)) ([3d95b24](3d95b24)) * **core:** Set up leader selection for multiple main instances ([#7527](#7527)) ([442c73e](442c73e)) * **editor:** Implement the `UserStack` design system component ([#7559](#7559)) ([ce14f62](ce14f62)) * **HTTP Request Node:** Add pagination support ([#5993](#5993)) ([cc2bd2e](cc2bd2e)) * **HTTP Request Node:** Update icon and default color ([#7572](#7572)) ([ff279ab](ff279ab)) * **n8n Form Trigger Node:** Add text area and password input types ([#7474](#7474)) ([b72040a](b72040a)) * **editor:** Dark mode is here! You can change it under personal settings.([#6980](#6980)) ([0746783](0746783)) --------- Co-authored-by: krynble <krynble@users.noreply.github.com> Co-authored-by: Omar Ajoue <krynble@gmail.com>
Merged
krynble
added a commit
that referenced
this pull request
Nov 2, 2023
## [1.15.1](https://github.com/n8n-io/n8n/compare/n8n@1.14.0...n8n@1.15.1) (2023-11-02) ### Bug Fixes * **core:** Ensure execution deletion in worker lifecycle hook ([#7481](#7481)) ([742c8a8](742c8a8)) * **core:** Fix data encryption on credentials import ([#7560](#7560)) ([b350568](b350568)) * **core:** Fix issue that prevents owner logging in when using ldap ([#7408](#7408)) ([479f902](479f902)) * **core:** Handle missing resultData in runData ([#7523](#7523)) ([1055bd3](1055bd3)) * **core:** Permission check for subworkflow properly checking for workflow settings ([#7576](#7576)) ([437c95e](437c95e)) * **core:** Prevent executions from becoming forever running ([#7569](#7569)) ([9bdb85c](9bdb85c)) * **core:** Upgrade crypto-js to address CVE-2023-46233 ([#7519](#7519)) ([65e5593](65e5593)) * **editor:** Do not truncate form inputs ([#7528](#7528)) ([ae616f1](ae616f1)) * **editor:** Fix NDV close after using input select ([#7544](#7544)) ([3b5e181](3b5e181)) * **editor:** Fix NDV unexpected re-render ([#7532](#7532)) ([2853fcf](2853fcf)) * **editor:** Fix route component caching, incorrect use of array reduce method and enable WF history feature ([#7434](#7434)) ([12a89e6](12a89e6)) * **editor:** Fixes the issue that Switch Node can not be created ([#7516](#7516)) ([df89685](df89685)) * **editor:** Handle `localStorage` being blocked/unavailable ([#7348](#7348)) ([c05bc67](c05bc67)) * Fix dark mode small issues ([#7573](#7573)) ([1d81afc](1d81afc)) * **Jira Software Node:** Handle missing issue types in issue types loader ([#7534](#7534)) ([9762705](9762705)) * **Switch Node:** Allow sortable Switch rules ([#7555](#7555)) ([7a56e58](7a56e58)) ### Features * **core:** Add optional Error-Output ([#7460](#7460)) ([655efea](655efea)) * **core:** Make queue mode settings configurable ([#7526](#7526)) ([3d95b24](3d95b24)) * **core:** Set up leader selection for multiple main instances ([#7527](#7527)) ([442c73e](442c73e)) * **editor:** Implement the `UserStack` design system component ([#7559](#7559)) ([ce14f62](ce14f62)) * **HTTP Request Node:** Add pagination support ([#5993](#5993)) ([cc2bd2e](cc2bd2e)) * **HTTP Request Node:** Update icon and default color ([#7572](#7572)) ([ff279ab](ff279ab)) * **n8n Form Trigger Node:** Add text area and password input types ([#7474](#7474)) ([b72040a](b72040a)) * **editor:** Dark mode is here! You can change it under personal settings.([#6980](#6980)) ([0746783](0746783)) --------- Co-authored-by: krynble <krynble@users.noreply.github.com> Co-authored-by: Omar Ajoue <krynble@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
GH Advisory