From c7e2e1dabab3511e8dc511558610bb766ec67ceb Mon Sep 17 00:00:00 2001 From: Marcel Raschke <42359664+MarcelRaschke@users.noreply.github.com> Date: Sun, 2 May 2021 22:27:29 +0200 Subject: [PATCH 1/2] Create SECURITY.md --- SECURITY.md | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000000..034e848032 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,21 @@ +# Security Policy + +## Supported Versions + +Use this section to tell people about which versions of your project are +currently being supported with security updates. + +| Version | Supported | +| ------- | ------------------ | +| 5.1.x | :white_check_mark: | +| 5.0.x | :x: | +| 4.0.x | :white_check_mark: | +| < 4.0 | :x: | + +## Reporting a Vulnerability + +Use this section to tell people how to report a vulnerability. + +Tell them where to go, how often they can expect to get an update on a +reported vulnerability, what to expect if the vulnerability is accepted or +declined, etc. From 01fa4897964f3477b5f09d4d7b172147033b8552 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 5 Nov 2022 09:09:11 +0000 Subject: [PATCH 2/2] fix: extensions/sample-ui-plugin/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-LOADERUTILS-3043105 --- extensions/sample-ui-plugin/package.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/extensions/sample-ui-plugin/package.json b/extensions/sample-ui-plugin/package.json index a2ff4340dc..fc3d8fea26 100644 --- a/extensions/sample-ui-plugin/package.json +++ b/extensions/sample-ui-plugin/package.json @@ -65,9 +65,9 @@ "@types/node": "^14.6.2", "@types/react": "^16.9.53", "rimraf": "^3.0.2", - "ts-loader": "^8.0.0", + "ts-loader": "^8.0.14", "typescript": "^3.9.6", - "webpack": "^4.43.0", - "webpack-cli": "^3.3.12" + "webpack": "^5.0.0", + "webpack-cli": "^4.0.0" } }