Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BP-1.20][FLINK-36740] [WebFrontend] Update frontend dependencies to address vulnerabilities #25830

Open
wants to merge 1 commit into
base: release-1.20
Choose a base branch
from
Open

[BP-1.20][FLINK-36740] [WebFrontend] Update frontend dependencies to address vulnerabilities #25830

wants to merge 1 commit into from

Conversation

mehdid93
Copy link
Contributor

What is the purpose of the change

This PR backport the changes done of the PR made by me in (#25718) in master for version 1.20.X to be used in dependencies upgrade and vulnerabilities fixes.

Brief change log

  • Update of the dependencies

Verifying this change

Please make sure both new and modified tests in this PR follow the conventions for tests defined in our code quality guide.

This change is a trivial rework / code cleanup without any test coverage.

Does this pull request potentially affect one of the following parts:

  • Dependencies (does it add or upgrade a dependency): yes
  • The public API, i.e., is any changed class annotated with @Public(Evolving): no
  • The serializers: no
  • The runtime per-record code paths (performance sensitive): no
  • Anything that affects deployment or recovery: JobManager (and its components), Checkpointing, Kubernetes/Yarn, ZooKeeper: no
  • The S3 file system connector: no

Documentation

  • Does this pull request introduce a new feature? no
  • If yes, how is the feature documented? not applicable

@flinkbot
Copy link
Collaborator

flinkbot commented Dec 20, 2024
edited
Loading

CI report:

Bot commands The @flinkbot bot supports the following commands:
  • @flinkbot run azure re-run the last Azure build

@mehdid93 mehdid93 mentioned this pull request Dec 20, 2024
Open
davidradl
davidradl reviewed Dec 20, 2024
View reviewed changes
flink-runtime-web/web-dashboard/dev/generate_notice.sh
# See the License for the specific language governing permissions and
# limitations under the License.
################################################################################
if ! npm list -g @wbmnky/license-report-generator > /dev/null
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I suggest a comment detailing what the shell script does, why is would be useful and when to run it.

davidradl
davidradl reviewed Dec 20, 2024
View reviewed changes
flink-runtime-web/README.md
@@ -108,6 +108,13 @@ re-compilation:
$ npm run lint
```

### How to update the NOTICE
> Tip: If you've made a modification to any of the dependencies, make sure you've run `dev/generate_notice` before committing to update the `NOTICE` file.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we should say npm dependancies I think.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@davidradl davidradl davidradl left review comments

Assignees
No one assigned
Labels
component=Runtime/WebFrontend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@mehdid93 @flinkbot @davidradl