Check and fix security issues #23
Comments
|
The project seems to also depends on Angular 12, which is long end of life. link Are there any plans to update to maintened Angular version? Any news about the open security issues reported in the original report? |
|
@henningw no concerns. this a dated codebase for feedback, while the incubated version is based on modern standards |
|
@henningw no its simply still in development and will be released once we feel it's ready to be used and contributed to. Since we have no contributors, we're not rushing it out. For clarity, there is no commercial product related to homer or its code, and there will never be one. If you're referring to our sponsor hepic that is not a commercial homer and the two projects have zero lines of code and technology in common. 👍 |
|
@lmangani I have of course no insight into your commercial offerings, therefore I asked. I got the impression from the required contributor licence assignment (e.g. at homer-ui) in order to contribute that you are also using some code parts for your commercial software. Thanks for the clarificiation. |
|
@henningw thanks for the question |
we have actually 37 security issues, should check and fix the most possible of them..
https://github.com/metrico/grafana-flow/security
Also we should check about the Node version (16) since it will be deprecated at september this year, and v17 has some breaking changes related to OpenSSL
The text was updated successfully, but these errors were encountered: