Skip to content

chore: update d3 deps to use newer versions for d3-color security update #820

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

chore: update d3 deps to use newer versions for d3-color security update #820

wants to merge 2 commits into from

Conversation

jdstrand
Copy link
Collaborator

@jdstrand jdstrand commented Oct 3, 2022
edited
Loading

  • chore: update d3 deps to use newer versions for d3-color security update
    Update giraffe/packages.json to use:

    • d3-color ^3.1.0
    • d3-format ^3.0.1
    • d3-interpolate ^3.0.1
    • d3-scale ^4.0.2

    This resolves d3-color in devDependencies to 3.1.0 to fix a security
    issue.

  • chore: package.json: use ^1.7.3 for shell-quote rather than exact version

    This resolves a yarn warning introduced in 4b61d6b.

IMPORTANT: I've not tested this beyond verifying CI tests pass. Please advise if you'd like me to test manually.

@jdstrand
chore: update d3 deps to use newer versions for d3-color security update
8141b52 
Update giraffe/packages.json to use:
* d3-color ^3.1.0
* d3-format ^3.0.1
* d3-interpolate ^3.0.1
* d3-scale ^4.0.2

This resolves d3-color in devDependencies to 3.1.0 to fix a security
issue.
@jdstrand
chore: package.json: use ^1.7.3 for shell-quote rather than exact ver…
3939271 
…sion

This resolves a yarn warning introduced in 4b61d6b.
@jdstrand jdstrand requested a review from a team October 3, 2022 15:57
@jdstrand jdstrand closed this Oct 3, 2022
@TCL735 TCL735 reopened this Oct 3, 2022
@TCL735
Copy link
Contributor

TCL735 commented Oct 3, 2022

I am re-opening this pull request and noting that we need to do something to get the build to pass.

Right now, there is an error when running the jest tests on many of the files:

SyntaxError: Unexpected token 'export'

The solution appears to be: https://stackoverflow.com/questions/49263429/jest-gives-an-error-syntaxerror-unexpected-token-export

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jdstrand @TCL735