mediawiki/extensions/Kartographer (main)

source • patches

Attempting to npm audit fix
{"added": 692, "removed": 0, "changed": 0, "audited": 693, "funding": 146, "audit": {"auditReportVersion": 2, "vulnerabilities": {"rollup": {"name": "rollup", "severity": "high", "isDirect": true, "via": [{"source": 1099757, "name": "rollup", "dependency": "rollup", "title": "DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS", "url": "https://github.com/advisories/GHSA-gcx4-mw62-g8wm", "severity": "high", "cwe": ["CWE-79"], "cvss": {"score": 6.4, "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H"}, "range": "<2.79.2"}], "effects": [], "range": "<2.79.2", "nodes": ["node_modules/rollup"], "fixAvailable": {"name": "rollup", "version": "4.54.0", "isSemVerMajor": true}}}, "metadata": {"vulnerabilities": {"info": 0, "low": 0, "moderate": 0, "high": 1, "critical": 0, "total": 1}, "dependencies": {"prod": 8, "dev": 685, "optional": 0, "peer": 1, "peerOptional": 0, "total": 692}}}}
Verifying that tests still pass
[DNM] there are no updates

composer dependencies

Dependencies

justinrainbow/json-schema: ~5.2

Development dependencies

mediawiki/mediawiki-codesniffer: 48.0.0
mediawiki/mediawiki-phan-config: 0.17.0
mediawiki/minus-x: 1.1.3
php-parallel-lint/php-console-highlighter: 1.0.0
php-parallel-lint/php-parallel-lint: 1.4.0

npm dependencies

Dependencies

Development dependencies

browserify: 16.2.2
eslint-config-wikimedia: 0.32.3
grunt: 1.6.1
grunt-banana-checker: 0.13.0
grunt-contrib-watch: 1.1.0
grunt-eslint: 24.3.0
grunt-stylelint: 0.20.1
jsdoc: 4.0.5
jsdoc-wmf-theme: 1.1.0
leaflet.markercluster: ^1.5.3
replace-in-files-cli: ^2.0.0
rollup: ^0.36.1
rollup-plugin-commonjs: ^5.0.4
stylelint-config-wikimedia: 0.18.0
svgo: 3.2.0

Logs

Source code is licensed under the AGPL.