Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security upgrade lodash from 4.17.19 to 4.17.20 #11095

Merged
merged 1 commit into from
Sep 23, 2020
Merged

Security upgrade lodash from 4.17.19 to 4.17.20 #11095

merged 1 commit into from
Sep 23, 2020

Conversation

kaxil
Copy link
Member

@kaxil kaxil commented Sep 22, 2020

Details: https://snyk.io/vuln/SNYK-JS-LODASH-590103

^ Add meaningful description above

Read the Pull Request Guidelines for more information.
In case of fundamental code change, Airflow Improvement Proposal (AIP) is needed.
In case of a new dependency, check compliance with the ASF 3rd Party License Policy.
In case of backwards incompatible changes please leave a note in UPDATING.md.

@kaxil kaxil requested a review from houqp September 22, 2020 20:59
@boring-cyborg boring-cyborg bot added the area:webserver Webserver related Issues label Sep 22, 2020
XD-DENG
XD-DENG approved these changes Sep 23, 2020
View reviewed changes
Copy link
Member

@XD-DENG XD-DENG left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CI is failing in static checks only due to the D202 issue (irrelevant), which has already been fixed in master.

@kaxil kaxil merged commit 51181e8 into apache:master Sep 23, 2020
@kaxil kaxil deleted the lodash-cve branch September 23, 2020 09:06
@kaxil kaxil mentioned this pull request Sep 23, 2020
Closed
@kaxil kaxil mentioned this pull request Nov 12, 2020
Closed
@kaxil kaxil added this to the Airflow 1.10.13 milestone Nov 12, 2020
kaxil added a commit that referenced this pull request Nov 18, 2020
@kaxil
Security upgrade lodash from 4.17.19 to 4.17.20 (#11095)
d32fb1d 
Details: https://snyk.io/vuln/SNYK-JS-LODASH-590103
kaxil added a commit that referenced this pull request Nov 18, 2020
@kaxil
Security upgrade lodash from 4.17.19 to 4.17.20 (#11095)
c6b5fac 
Details: https://snyk.io/vuln/SNYK-JS-LODASH-590103
cfei18 pushed a commit to cfei18/incubator-airflow that referenced this pull request Mar 5, 2021
@kaxil
Security upgrade lodash from 4.17.19 to 4.17.20 (apache#11095)
b9aac47 
Details: https://snyk.io/vuln/SNYK-JS-LODASH-590103
@haroldwoo haroldwoo mentioned this pull request Jul 8, 2021
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@XD-DENG XD-DENG XD-DENG approved these changes

@houqp houqp Awaiting requested review from houqp

Assignees
No one assigned
Labels
area:webserver Webserver related Issues
Projects
None yet
Milestone
Airflow 1.10.13
Development

Successfully merging this pull request may close these issues.
2 participants
@kaxil @XD-DENG