Upgrade vendor libraries to avoid potential security issues · apolloconfig/apollo#4016

(11 留言) (0 反應) (0 負責人)Java (29,769 star) (10,177 fork)batch import

help wanted

描述

Is your feature request related to a problem? Please describe. The vendor libraries used in apollo are out-dated(Bootstrap v3.3.5, jQuery 2.2.4, AngularJS v1.5.1, etc), which means potential security issues, e.g. https://snyk.io/test/npm/bootstrap/3.3.5

Describe the solution you'd like Upgrade the vendor libraries to recent versions

貢獻者指南

技術棧: javascriptangularjava
領域: frontend
議題類型: feature
難度: 3
預計時間: 1-2 days
活動狀態: stale
清晰度: clear
前置要求: JavaScriptAngularJSdependency management
新手友善度: 60
研究方向: Investigate the current vendor libraries (likely in a 'vendor' directory or package.json). Check for known vulnerabilities using Snyk or similar tools. Update each library to the latest version while ensuring compatibility with existing code. Test the UI thoroughly after changes, as breaking changes may require code adjustments.