Security Vulnerabilities Detected by Dependabot (postgreSQL/html/jquery.js) #161
Comments
|
I don't think updating is worth the time. It (along with the HTML) was created by the program that generated ERD (in this case, schemaSpy), and no one uses the html view. We do use the SVG output, but have been editing that manually. I'll drop the text of this file but leave a note there that says it that if someone wants to regenerate the html and svg, they should do so with a current version of schemaSpy or some other ERD generator. |
|
Thanks @mobb! |
|
@mobb, it looks like Dependabot isn't entirely happy with this. Even though you've commented out the code, Dependabot still flags it. One option might be to update the version number in jquery.js to the one it recommends. I can do this if you'd like. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi @mobb,
Dependabot has flagged the ecocomDP repository for potential security vulnerabilities related to the file
postgreSQL/html/jquery.js. This file appears to have been originally committed by you.There are a couple ways we could address these reported vulnerabilities:
What are your thoughts on how we should proceed with this?
Thanks for your input!
The text was updated successfully, but these errors were encountered: